为 Microsoft Teams 准备组织的网络Prepare your organization's network for Microsoft Teams

网络要求Network requirements

如果你已针对 Microsoft 365 或 Office 365优化网络,则你可能已准备好使用 Microsoft Teams。If you've already optimized your network for Microsoft 365 or Office 365, you're probably ready for Microsoft Teams. 在任何情况下,尤其是在将 Teams 作为第一个 Microsoft 365 或 Office 365 工作负荷快速推出以支持远程工作者 的情况下,在开始 推出 Teams 之前,请检查以下内容:In any case - and especially if you're rolling out Teams quickly as your first Microsoft 365 or Office 365 workload to support remote workers - check the following before you begin your Teams rollout:

  1. 是否所有位置都提供 Internet (以便它们可以连接到 Microsoft 365 或 Office 365) ?Do all your locations have internet access (so they can connect to Microsoft 365 or Office 365)? 除了正常的 Web 流量外,至少请确保已针对 Teams 中的媒体在所有位置打开以下内容:At a minimum, in addition to normal web traffic, make sure you've opened the following, for all locations, for media in Teams:

    端口Ports UDP 端口 34783481UDP ports 3478 through 3481
    IP 地址IP addresses 13.107.64.0/18、52.112.0.0/1452.120.0.0/14 13.107.64.0/18, 52.112.0.0/14, and 52.120.0.0/14

    重要

    如果需要在本地或在线与 Skype for Business 联合,则需要配置一些额外的 DNS 记录。If you need to federate with Skype for Business, either on-premises or online, you will need to configure some additional DNS records.

    CNAME 记录/主机名CNAME Records / Host name TTLTTL 指向地址或值Points to address or value
    sipsip 36003600 sipdir.online.lync.comsipdir.online.lync.com
    lyncdiscoverlyncdiscover 36003600 webdir.online.lync.comwebdir.online.lync.com
  2. 你是否拥有 Microsoft 365 或 Office 365 (验证域,例如contoso.com) ?Do you have a verified domain for Microsoft 365 or Office 365 (for example, contoso.com)?

    • 如果你的组织尚未推出 Microsoft 365 或 Office 365,请参阅"开始使用"。If your organization hasn't rolled out Microsoft 365 or Office 365, see Get started.
    • 如果你的组织尚未为 Microsoft 365 或 Office 365 添加或配置已验证的域,请参阅 域常见问题解答If your organization hasn't added or configured a verified domain for Microsoft 365 or Office 365, see the Domains FAQ.
  3. 您的组织是否部署了 Exchange Online 和 SharePoint Online?Has your organization deployed Exchange Online and SharePoint Online?

确认满足这些网络要求后,可以开始推出Teams。Once you've verified that you meet these network requirements, you may be ready to Roll out Teams. 如果你是一家大型的跨国企业,或者你知道自己存在一些网络限制,请继续阅读,了解如何评估和优化 Teams 的网络。If you're a large multinational enterprise, or if you know you've got some network limitations, read on to learn how to assess and optimize your network for Teams.

重要

对于教育机构:如果你的组织是教育机构,并且你使用学生信息系统 (SIS) ,请部署学校数据同步,然后再推出 Teams。For educational institutions: If your organization is an educational institution and you use a Student Information System (SIS), deploy School Data Sync before you roll out Teams.

运行本地 Skype for Business Server: 如果你的组织运行本地 Skype for Business Server (或 Lync Server) ,则必须配置 Azure AD Connect 以将本地目录与 Microsoft 365 或 Office 365 同步。Running on-premises Skype for Business Server: If your organization is running on-premises Skype for Business Server (or Lync Server), you must configure Azure AD Connect to synchronize your on-premises directory with Microsoft 365 or Office 365.

最佳做法:使用 CQD 监视网络并调用分析Best practice: Monitor your network using CQD and call analytics

使用 CQD ( 呼叫质量) ,深入了解 Teams 中的通话和会议质量。Use the Call Quality Dashboard (CQD) to gain insight into the quality of calls and meetings in Teams. CQD 可通过密切关注质量、可靠性和用户体验来帮助优化网络。CQD can help you optimize your network by keeping a close eye on quality, reliability, and the user experience. CQD 查看整个组织的聚合遥测数据,其中总体模式可能变得明显,从而可以识别问题和计划修正。CQD looks at aggregate telemetry for an entire organization where overall patterns can become apparent, which lets you identify problems and plan remediation. 此外,CQD 还提供丰富的指标报告,用于深入了解整体质量、可靠性和用户体验。Additionally, CQD provides rich metrics reports that provide insight into overall quality, reliability, and user experience.

你将使用 呼叫分析调查 单个用户的呼叫和会议问题。You'll use call analytics to investigate call and meeting problems for an individual user.

网络优化Network optimization

以下任务是可选的,在推出 Teams 时不需要,尤其是如果你是小型企业并且已推出 Microsoft 365 或 Office 365 时。The following tasks are optional and aren't required for rolling out Teams, especially if you're a small business and you've already rolled out Microsoft 365 or Office 365. 使用本指南优化网络和 Teams 性能,或者如果知道存在一些网络限制。Use this guidance to optimize your network and Teams performance or if you know you've got some network limitations.

如果:可能需要执行其他网络优化:You might want to do additional network optimization if:

  • 团队运行速度缓慢 (,可能是因为带宽不足) Teams runs slowly (maybe you have insufficient bandwidth)
  • 调用不断 (可能是防火墙或代理阻止程序) Calls keep dropping (might be due to firewall or proxy blockers)
  • 呼叫具有静态和中断,或者声音像机器人 (可能是抖动或数据包丢失) Calls have static and cut out, or voices sound like robots (could be jitter or packet loss)

有关网络优化的深入讨论,包括识别和修复网络障碍的指南,请阅读 Microsoft 365 和 Office 365 网络连接原则For an in-depth discussion of network optimization, including guidance for identifying and fixing network impairments, read Microsoft 365 and Office 365 Network Connectivity Principles.

网络优化任务Network optimization task DetailsDetails
网络规划器Network planner

有关评估网络的帮助,包括组织物理位置的带宽计算和网络要求,请查看 Teams 管理中心中的网络规划器工具For help assessing your network, including bandwidth calculations and network requirements across your org's physical locations, check out the Network Planner tool, in the Teams admin center. 提供网络详细信息和 Teams 使用情况时,网络规划器会计算跨组织的物理位置部署 Teams 和云语音的网络要求。When you provide your network details and Teams usage, the Network Planner calculates your network requirements for deploying Teams and cloud voice across your organization's physical locations.

有关示例方案,请参阅"使用网络规划器 - 示例方案"。For an example scenario, see Using Network Planner - example scenario.

Teams 顾问Advisor for Teams Teams 顾问 是 Teams 管理 中心的一部分Advisor for Teams is part of the Teams admin center. 它将评估 Microsoft 365 或 Office 365 环境并确定更新或修改所需的最常用配置,帮助你成功推出 Teams。It assesses your Microsoft 365 or Office 365 environment and identifies the most common configurations that you may need to update or modify before you can successfully roll out Teams.
外部名称解析External Name Resolution 请确保运行 Teams 客户端的所有计算机都可以解析外部 DNS 查询,以发现 Microsoft 365 或 Office 365 提供的服务,并且防火墙不会阻止访问。Be sure that all computers running the Teams client can resolve external DNS queries to discover the services provided by Microsoft 365 or Office 365 and that your firewalls are not preventing access. 有关配置防火墙端口的信息,请转到 Microsoft 365 和 Office 365 URL 和 IP 范围For information about configuring firewall ports, go to Microsoft 365 and Office 365 URLs and IP ranges.
维护会话持久性Maintain session persistence 请确保防火墙不会更改映射的网络地址转换 (NAT) UDP 的地址或端口。Make sure your firewall doesn't change the mapped Network Address Translation (NAT) addresses or ports for UDP.
验证 NAT 池大小Validate NAT pool size 根据用户连接所需的 (NAT) 网络地址转换。Validate the network address translation (NAT) pool size required for user connectivity. 当多个用户和设备使用网络地址转换 (NAT) 或端口地址转换 (PAT) 访问 Microsoft 365 或 Office 365 时,需要确保隐藏在每个可公开路由 IP 地址后面的设备不超过支持的数量。When multiple users and devices access Microsoft 365 or Office 365 using Network Address Translation (NAT) or Port Address Translation (PAT), you need to ensure that the devices hidden behind each publicly routable IP address do not exceed the supported number. 确保向 NAT 池分配足够的公共 IP 地址,以防止端口耗尽。Ensure that adequate public IP addresses are assigned to the NAT pools to prevent port exhaustion. 端口耗尽会导致内部用户和设备无法连接到 Microsoft 365 或 Office 365 服务。Port exhaustion will contribute to internal users and devices being unable to connect to the Microsoft 365 or Office 365 service.
路由到 Microsoft 数据中心Routing to Microsoft data centers 实现到 Microsoft 数据中心的最有效的路由Implement the most efficient routing to Microsoft data centers. 确定可以使用本地或区域出口点尽可能高效地连接到 Microsoft 网络的位置。Identify locations that can use local or regional egress points to connect to the Microsoft network as efficiently as possible.
入侵检测和预防指南Intrusion Detection and Prevention Guidance 如果为出站连接部署了入侵检测或防护系统 (IDS/IPS) ,请确保允许所有 Microsoft 365 或 Office 365 URL。If your environment has an Intrusion Detection or Prevention System (IDS/IPS) deployed for an extra layer of security for outbound connections, be sure to allow all Microsoft 365 or Office 365 URLs.
配置拆分隧道 VPNConfigure split-tunnel VPN

我们建议为 Teams 流量提供备用路径,以绕过虚拟专用网络 (VPN) 通常称为拆分隧道VPN。We recommend that you provide an alternate path for Teams traffic that bypasses the virtual private network (VPN), commonly known as split-tunnel VPN. 拆分隧道意味着 Microsoft 365 或 Office 365 的流量不会通过 VPN,而是直接转到 Microsoft 365 或 Office 365。Split tunneling means that traffic for Microsoft 365 or Office 365 doesn't go through the VPN but instead goes directly to Microsoft 365 or Office 365. 绕过 VPN 将对 Teams 质量产生积极的影响,并且会减少来自 VPN 设备和组织的网络的负载。Bypassing your VPN will have a positive impact on Teams quality, and it reduces load from the VPN devices and the organization's network. 若要实现拆分隧道 VPN,请与 VPN 供应商合作。To implement a split-tunnel VPN, work with your VPN vendor.

建议绕过 VPN 的其他原因:Other reasons why we recommend bypassing the VPN:

  • VPN 通常未设计为或配置为支持实时媒体。VPNs are typically not designed or configured to support real-time media.

  • 某些 VPN 可能也不支持 Teams (所需的 UDP) 。Some VPNs might also not support UDP (which is required for Teams).

  • VPN 还会基于已加密的媒体流量引入额外的加密层。VPNs also introduce an extra layer of encryption on top of media traffic that's already encrypted.

  • 由于通过 VPN 设备将流量固定在一起,与 Teams 的连接可能效率不够。Connectivity to Teams might not be efficient due to hair-pinning traffic through a VPN device.

实施 QoSImplement QoS 使用服务质量和 QoS ( 配置) 优先级。Use Quality of Service (QoS) to configure packet prioritization. 这将提高 Teams 中的呼叫质量,并帮助你监视和排查呼叫质量问题。This will improve call quality in Teams and help you monitor and troubleshoot call quality. QoS 应在托管网络的所有分段上实现。QoS should be implemented on all segments of a managed network. 即使网络已充分预配带宽,QoS 也能够针对意外的网络事件提供风险缓解。Even when a network has been adequately provisioned for bandwidth, QoS provides risk mitigation in the event of unanticipated network events. 使用 QoS 时,语音流量具有优先级,以便这些意外事件不会对质量造成负面影响。With QoS, voice traffic is prioritized so that these unanticipated events don't negatively affect quality.
优化 WiFiOptimize WiFi

与 VPN 类似,WiFi 网络不一定设计为或配置为支持实时媒体。Similar to VPN, WiFi networks aren't necessarily designed or configured to support real-time media. 规划或优化 WiFi 网络以支持 Teams 是高质量部署的一个重要考虑因素。Planning for, or optimizing, a WiFi network to support Teams is an important consideration for a high-quality deployment. 请考虑以下因素:Consider these factors:

  • 使用 WMM (QoS 或 WiFi 多媒体) 以确保媒体流量在 WiFi 网络上获得适当的优先级。Implement QoS or WiFi Multimedia (WMM) to ensure that media traffic is getting prioritized appropriately over your WiFi networks.

  • 计划和优化 WiFi 带和接入点位置。Plan and optimize the WiFi bands and access point placement. 2.4 GHz 范围可能提供足够的体验,具体取决于接入点的位置,但访问点通常受该范围内运行的其他使用者设备的影响。The 2.4 GHz range might provide an adequate experience depending on access point placement, but access points are often affected by other consumer devices that operate in that range. 由于 5 GHz 范围密集,因此更适合实时媒体,但需要更多的接入点才能获得足够的覆盖范围。The 5 GHz range is better suited to real-time media due to its dense range, but it requires more access points to get sufficient coverage. 此外,终结点还需要相应地支持该范围并配置为利用这些频带。Endpoints also need to support that range and be configured to leverage those bands accordingly.

  • 如果你使用的是双带 WiFi 网络,请考虑实施带引导。If you're using dual-band WiFi networks, consider implementing band steering. 带式操纵 是 WiFi 供应商实现的技术,用于影响双带客户端使用 5 GHz 范围。Band steering is a technique implemented by WiFi vendors to influence dual-band clients to use the 5 GHz range.

  • 当同一通道的接入点过于靠近时,它们可能会导致信号重叠和意外竞争,从而导致用户体验不佳。When access points of the same channel are too close together, they can cause signal overlap and unintentionally compete, resulting in a bad experience for the user. 确保彼此旁边的接入点位于不重叠的通道上。Ensure that access points that are next to each other are on channels that don't overlap.

每个无线供应商都有自己的无线解决方案部署建议。Each wireless vendor has its own recommendations for deploying its wireless solution. 有关具体指南,请咨询 WiFi 供应商。Consult your WiFi vendor for specific guidance.

带宽要求Bandwidth requirements

Teams 旨在提供最佳的音频、视频和内容共享体验,而不管网络状况如何。Teams is designed to give the best audio, video, and content sharing experience regardless of your network conditions. 也就是说,当带宽不足时,Teams 将音频质量比视频质量优先。That said, when bandwidth is insufficient, Teams prioritizes audio quality over video quality.

在带宽没有限制的地方,Teams 会优化媒体质量,包括高达 1080p 视频分辨率、高达 30fps 的视频和 15fps 的内容以及高保真音频。Where bandwidth isn't limited, Teams optimizes media quality, including up to 1080p video resolution, up to 30fps for video and 15fps for content, and high-fidelity audio.

下表介绍了团队如何使用带宽。This table describes how Teams uses bandwidth. 团队始终非常保守带宽利用率,并且可以在 1.2 Mbps 下提供 HD 视频质量。Teams is always conservative on bandwidth utilization and can deliver HD video quality in under 1.2Mbps. 每个音频/视频呼叫或会议中的实际带宽消耗将根据多种因素而有所不同,例如视频布局、视频分辨率和每秒视频帧。The actual bandwidth consumption in each audio/video call or meeting will vary based on several factors, such as video layout, video resolution, and video frames per second. 如果有更多的可用带宽,质量和使用将会增加,以提供最佳体验。When more bandwidth is available, quality and usage will increase to deliver the best experience.

带宽(向上/向下)Bandwidth(up/down) 方案Scenarios
30 kbps30 kbps 对等音频通话Peer-to-peer audio calling
130 kbps130 kbps 对等音频通话和屏幕共享Peer-to-peer audio calling and screen sharing
500 kbps500 kbps 对等高质量视频通话适用 360p at 30fpsPeer-to-peer quality video calling 360p at 30fps
1.2 Mbps1.2 Mbps 通过30fps 的高清720p 分辨率进行对等高清视频通话Peer-to-peer HD quality video calling with resolution of HD 720p at 30fps
1.5 Mbps1.5 Mbps 在30fps 上解决高清1080p 的点对点高清音质视频通话Peer-to-peer HD quality video calling with resolution of HD 1080p at 30fps
500kbps/1Mbps500kbps/1Mbps 群组视频通话Group Video calling
1Mbps/2Mbps1Mbps/2Mbps HD 群组视频通话(在1080p 屏幕上540p 视频)HD Group video calling (540p videos on 1080p screen)

Microsoft 365 和 Office 365 网络连接原则Microsoft 365 and Office 365 Network Connectivity Principles

全球终结点:Skype for Business Online 和 TeamsWorldwide endpoints: Skype for Business Online and Teams

Teams 的代理服务器Proxy servers for Teams

Teams 中的媒体:为什么会议简单Media in Teams: Why meetings are simple

Teams 中的媒体:深入探讨媒体流Media in Teams: Deep dive into media flows

Teams 中的标识模式和身份验证Identity models and authentication in Teams

如何部署 TeamsHow to roll out Teams

Teams 疑难解答Teams Troubleshooting